Critical VMWare vulnerability discovered

If you use VMWare's desktop virtualization software in your enterprise, you'll want to pay close attention: Core Security Technologies have discovered a vulnerability in VMWare's desktop software that could allow an attacker to gain complete control of a system, in order to launch executable files on the host OS. "The discovery is notable given that virtualization security is largely uncharted territory," ZDnet's Larry Dignan writes. "However, it doesn't take a rocket scientist to figure out virtualization could be some fertile ground for hackers." VMWare plans to address the vulnerability in a future release; in the meantime, Core Security recommends that customers disable shared folders for all virtual machines as a precaution. 

For more on the discovery:
- see this ZDnet article